Generating PKI email accounts on a web-based email system

US 8,156,190 B2
Filed: 07/22/2010
Issued: 04/10/2012
Est. Priority Date: 07/19/2005
Status: Active Grant

First Claim

Patent Images

1. A system comprising:

a) a PKI email account website displayed on a client computer and hosted on one or more computers in a network, wherein the client computer does not store or recall PKI keys, and wherein the PKI email account website is configured to;

i) receive a PKI email account request from one or more users, wherein the PKI email account request is the only interaction required by the one or more users to create one or more PKI email accounts;

ii) generate and send a certificate signing request to a certificate authority which does not interact with the one or more users;

iii) receive and install, on the PKI email website, a certificate issued and signed by the certificate authority;

iv) store and recall one or more PKI keys without interaction from the one or more users; and

v) create the one or more PKI email accounts, wherein the one or more PKI email accounts are configured to access one or more cryptographic functions, without transmitting PKI digital keys through the network, wherein the one or more PKI email accounts are accessible to an email website, and wherein the email website is configured to read and send email messages.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides systems and methods for allowing an Email User to create a Public Key Infrastructure (PKI) Email Account and thereafter to digitally sign, send, verify and receive PKI encrypted emails over a computer network, such as the Internet. The systems and methods preferably include a Web-based Email System and a Certificate Authority that coordinate their actions to make the process of creating, maintaining and using the PKI Account as easy as possible for the Email User. In a preferred embodiment, a Keystore System may also be used to enhance the management and use of digital keypairs.

28 Citations

View as Search Results

18 Claims

1. A system comprising:
- a) a PKI email account website displayed on a client computer and hosted on one or more computers in a network, wherein the client computer does not store or recall PKI keys, and wherein the PKI email account website is configured to;
  
  i) receive a PKI email account request from one or more users, wherein the PKI email account request is the only interaction required by the one or more users to create one or more PKI email accounts;
  
  ii) generate and send a certificate signing request to a certificate authority which does not interact with the one or more users;
  
  iii) receive and install, on the PKI email website, a certificate issued and signed by the certificate authority;
  
  iv) store and recall one or more PKI keys without interaction from the one or more users; and
  
  v) create the one or more PKI email accounts, wherein the one or more PKI email accounts are configured to access one or more cryptographic functions, without transmitting PKI digital keys through the network, wherein the one or more PKI email accounts are accessible to an email website, and wherein the email website is configured to read and send email messages.
- View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10)
- - 3. The system of claim 1, wherein the PKI email account request comprises an upgrade from one or more existing email accounts to the one or more PKI email accounts.
  - 4. The system of claim 1, wherein the PKI email account website verifies the identity of the one or more users.
  - 5. The system of claim 1, wherein the certificate authority verifies the identity of the one or more users.
  - 6. The system of claim 1, wherein the one or more users are notified, via the PKI email account website, that the one or more PKI email accounts are created.
  - 7. The system of claim 1, wherein the certificate authority and the PKI email account website share hardware resources.
  - 8. The system of claim 1, wherein the certificate authority and the PKI email account website are operated by the same entity.
  - 9. The system of claim 1, wherein a keystore system is integrated with the PKI email account website.
  - 10. The system of claim 1, further comprising a control panel configured to receive options selected by the one or more users to automatically request and receive a new certificate, without interaction from the one or more users, when a current certificate is near to its expiration date.

2. A method comprising the steps of:
- a) receiving, from one or more users, a PKI email account request and an auto-renewal option selection, via a PKI email account website displayed on a client computer and hosted on one or more computers in a network, wherein the client computer does not store or recall PKI keys and wherein the PKI email account request is the only interaction required by the one or more users to create one or more PKI email accounts;
  
  b) generating and storing a key pair, without interaction from the one or more users, in a data storage on the one or more computers in the network;
  
  c) requesting a first certificate from a certificate authority which does not interact with the one or more users;
  
  d) receiving the first certificate issued and signed by the certificate authority;
  
  e) installing the first certificate on the PKI email account website;
  
  f) creating the one or more PKI email accounts for the one or more users, wherein the one or more PKI email accounts are configured to access one or more cryptographic functions, without transmitting PKI digital keys through the network, wherein the one or more PKI email accounts are accessible to an email website, and wherein the email website is configured to read and send email messages; and
  
  g) requesting and receiving a second certificate from the certificate authority, without interaction from the user or a key store system, prior to the first certificate expiring.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The method of claim 2, wherein the PKI email account request comprises an upgrade from one or more existing email accounts to the one or more PKI email accounts.
  - 12. The method of claim 2, wherein the PKI email account website verifies the identity of the one or more users.
  - 13. The method of claim 2, wherein the certificate authority verifies the identity of the one or more users.
  - 14. The method of claim 2, wherein the one or more users are notified, via the PKI email account website, that the one or more PKI email accounts are created.
  - 15. The method of claim 2, wherein the certificate authority and the PKI email account website share hardware resources.
  - 16. The method of claim 2, wherein the certificate authority and the PKI email account website are operated by the same entity.
  - 17. The method of claim 2, wherein the keystore system is integrated with the PKI email account website.
  - 18. The method of claim 2, further comprising a control panel configured to receive options selected by the one or more users to automatically request and receive a new certificate, without interaction from the one or more users, when a current certificate is near to its expiration date.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Go Daddy Operating Company LLC (GoDaddy, Inc.)
Original Assignee
Go Daddy Operating Company LLC (GoDaddy, Inc.)
Inventors
Thayer, Wayne, Owen, Brad
Primary Examiner(s)
Walsh, John B.

Application Number

US12/841,723
Publication Number

US 20100293371A1
Time in Patent Office

628 Days
Field of Search

None
US Class Current

709/206
CPC Class Codes

H04L 51/00   User-to-user messaging in p...

H04L 63/0428   wherein the data content is...

H04L 63/06   for supporting key manageme...

H04L 63/0823   using certificates cryptogr...

H04L 63/12   Applying verification of th...

Generating PKI email accounts on a web-based email system

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

28 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Generating PKI email accounts on a web-based email system

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

28 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links